Rack now monitors its capacity and will notify you if it doesn't have room to place containers. You can also get notifications for deployment events, cluster convergence, and cluster deconvergence. To get these notifications, add Slack on the "Integrations" tab for your Rack in Grid.

Convox logs are now shipped to Amazon CloudWatch inside your AWS account. CloudWatch is a powerful tool that allows you to set up alarms, monitoring dashboards and integrations with other services.

Privacy

Options for --vpc-cidr, --subnet*-cidr have been added to the convox install command to provide more control over VPC network setup, making it easier for users to set up VPC peering. This is a community-contributed feature by Chris LeBlanc. Thanks!

Several improvements have been made to Convox's SSL tools, helping you keep your app communicatons private:

convox ssl create can now complete intermediate cert chains for you or allow you to upload your own chain.

the --self-signed option will auto-generate and apply a self-signed certificate to your app

the --secure option allows you to encrypt traffic all the way to your app, rather than having it terminate at the load balancer

convox ssl update can hot swap certificates with no downtime

It's now possible to configure your app's processes to use internal load balancers. This means that the ports will only be open to other processes inside the app's VPC. This enables microservice architectures without opening up everything to the Internet. To configure an internal load balancer, only specify the internal port in your `docker-compose.yml. For example, this:

ports:
- "80"

Instead of:

ports:
- "80:80"

Security

You can count on Convox to stay current with the latest security threats and to react accordingly. When Amazon released a new AMI for its ECS service instances to address a network security threat, Convox reacted quickly to update the AMI version it uses.